Pwnie’s 2008

WordPress seems to have had the dubious pleasure of been nominated for the 2008 Pwnie Awards in the “Mass 0wnage” category:

It seems like hardly a week goes by without a new vulnerability in WordPress or one of its many plugins. Many of them are actively being exploited to own popular WordPress blogs and use them to serve spam or client-side exploits to unsuspecting visitors. The popularity of WordPress combined with the abysmal security practices of WordPress plugin developers places the entire Internet at risk and is worthy of a nomination.

To be fair many of the vulnerabities that are reported are within plugin code rather than the core. For more information on the CVEs reported for WordPress and WordPress plugins this year you can head over to the codex.

Tags: ,

WordPress 2.3.2

WordPress 2.3.2 has hit the streets as a late christmas early new years present for you all it include a security fix. You can read a more detailed look at the changes over on my other blog.

Tags: ,

WordPress 2.3.1

WordPress 2.3.1 has hit the streets including one security fix. You can read a more detailed look at the changes over on my other blog.

Tags: ,

SQL Sanitization

This just made me laugh out loud.

Tags: ,


d
go to dashboard
l
go to login
h
show/hide help
e
edit post/page
r
comment on post/page
m
go to moderate comments
esc
cancel